To install an end-user application on an RD Session Host server, the RD Session Host server must first be switched into a special install mode called RD-Install to ensure that the application will be able to run in a multi-user environment. After your applications have been installed on your RD Session Host server, you must switch the server back into execution mode (RD-Execute) before users can remotely connect to your server. You can switch between the install and execute modes from the command line using these commands:

change user /install

change user /execute

To determine the current install mode of your RD Session Host server, use this command:

Are you getting the error code: “The computer computer can’t verify the identity of the RD Gateway. It’s not safe to connect to servers that can’t be identified”? You most likely setup Remote Desktop Web Access (RDweb) with a self signed certificated.

The reason why you are getting this error is your machine doesn’t trust and can’t verify the identity of the RD Gateway. To allow your machine to trust the RD Gateway and get RD Web Access working you will need to import the Cert from the website and put it into the “Trusted Root Certification Authorities” store .

On the error pop-up click the “View Certificate” button.

Click on the Details tab and then hit “Copy to File…” we will back the cert up to our desktop.

A Wizard will pop up. You will need to select the type of cert. Select “DER encoded”

Specify the location

The export should complete without errors.

Right click cert and select Install Certificate.

You are going to Place the cert into the “Trusted Root Certification Authorities” store. You will need to click “Browse” to select it.

The import should work,

You will be asked “Are you REALLY sure you want to install this cert.”. Yes… Yes you do.

You will be told the import was successful.

Close all browser. Go back to the RD Web Access URL and re-logon. Everything should work now.

This command enables remote access to the device manager. Please note the while you will have the ability to view the device manager you will only have read-only access to it. I am assuming the reason for read-only remote access to the device manager is for security concerns.

I kills me watching another consultant or user when they use remote desktop. I don’t mean the technology, I mean the remote desktop client that comes with Windows OS. Granted… it’s in the start menu of every windows machine by default. It is a quick and dirty way of using remote desktop. Don’t you think you’d be much better off using something like “Remote Desktop Connection Manager”?!?

Some of the benefits of using Remote Desktop Connection Manager is:

FREE!

EASY to use!

It allows you to group several servers into groups.

Passwords are encrypted when you save them

You can move fluently between many different servers at a time.

Write notes about each server

Save your configuration and copy them to other workstations

Being a consultant I can’t begin to tell you how much time this saves me. If you’ve never used Remote Desktop Connection Manager I don’t know what you are waiting for!

I was just at a client the other day and was shocked at how old their servers were. In order to install a new Windows 2008 Dc (domain controller) in the network you need to prep the Active directory Schema to version 44. To do this you will need to run a command line application called ADPREP. ADPREP can be found on the Windows 2008 DVD. Please remember that you will need to run this application on the Windows 2003 machine and NOT the Windows 2008 machine you are trying to create!

You will need to open a command prompt and type this command: adprep /forestprep

Once run you will see something similar. Type “C” and hit enter.

Still in the same command prompt window we will need to update the domain info. We do this by typing: adprep /forestprep

*NOTE*

If you get the error above you need to configure the domain to be in Windows 2003 mode.

Re-run the adprep /domainprep command. If successful you will see something like this:

Next run this command: adprep /rodcprep

Run “Dcpromo” from the Windows 2008 server you want to make a DC

Add a domain controller to an existing domain.

Type in domain name and enter credentials

The rest of the items are pretty much NEXT, NEXT, NEXT type questions. At the end of the install you will need to restart the server.